Publication Date – August 22, 2022
https://api.bitsighttech.com/ratings/v1/companies/company_guid/findings?risk_vector=spf
Get an organization’s SPF Domains finding details.
Parameters
For details specific to SPF Domains, use the ?risk_vector=spf parameter. Other query parameters are listed in GET: Finding Details.
Example Response
{
"links":{
"next":null,
"previous":null
},
"count":31,
"results":[
[…]
{
"temporary_id":"A9Jq47BBje41bb19b93fac69219d98b4ea4a02b440",
"affects_rating":false,
"assets":[
{
"asset":"goliathinvest.com",
"identifier":null,
"category":"critical",
"importance":1.0,
"is_ip":false
}
],
"details":{
"check_pass":" ",
"diligence_annotations":{
[…]
"goliathinvest.com":{
"score":"good",
"message":"Effective",
"mech_tags":{ },
"spf_record":[
"v=spf1 include:domain.com ~all"
]
},
"total":{
"score":"good",
"message":"Effective",
"mech_tags":{ },
"spf_record":[ ]
}
},
"grade":"GOOD",
"remediations":[ ],
"sample_timestamp":"2021-10-31T02:13:14Z",
"vulnerabilities":[ ],
"rollup_end_date":"2021-10-31",
"rollup_start_date":"2021-05-16"
},
"evidence_key":"goliathinvest.com",
"first_seen":"2021-05-16",
"last_seen":"2021-10-31",
"related_findings":[ ],
"risk_category":"Diligence",
"risk_vector":"spf",
"risk_vector_label":"SPF",
"rolledup_observation_id":"W0PlQiePjSEXMclYSj1BJA==",
"severity":1.0,
"severity_category":"minor",
"tags":[ ],
"remediation_history":{
"last_requested_refresh_date":null,
"last_refresh_status_date":null,
"last_refresh_status_label":null,
"last_refresh_reason_code":null
},
"asset_overrides":[
{
"asset":"goliathinvest.com",
"importance":"high",
"override_importance":"high"
}
],
"duration":null,
"comments":"Richard Kuga from Saperix, Inc. said: \"Here are some findings\" at 2017-08-18 15:32 UTC;\Cate Remediator said: \"I will take a look\" at 2018-05-09 15:24 UTC;\Richard Kuga from Saperix, Inc. replied: \"Prioritize for next week\" at 2021-03-16 19:38 UTC",
"remaining_decay":null
}
]
}
Response Attributes
| Field | Description | ||||||
|---|---|---|---|---|---|---|---|
linksObject |
Navigation for multiple pages of results. See pagination. | ||||||
nextString |
The URL for navigating to the next page of results. | ||||||
previousString |
The URL for navigating to the previous page of results. | ||||||
countInteger |
The number of findings. | ||||||
resultsArray |
Findings and their details. | ||||||
| Object | A finding. | ||||||
temporary_idString |
A temporary identifier for this finding. | ||||||
affects_ratingBoolean |
true = This finding has an impact on the letter grade. |
||||||
assetsArray |
Asset details. | ||||||
| Object | An asset. | ||||||
assetString |
The asset name. | ||||||
identifierNull |
For internal Bitsight use. | ||||||
categoryString |
The Bitsight-calculated asset importance. | ||||||
importanceDecimal |
The Bitsight-calculated asset importance. | ||||||
is_ipBoolean |
true = This asset is an IP address. |
||||||
detailsObject |
Details of this finding. | ||||||
check_passString |
For internal Bitsight use. | ||||||
diligence_annotationsObject |
Diligence finding details. | ||||||
| Asset Object |
An asset. | ||||||
scoreString |
An assessment of this asset. | ||||||
messageString |
Indicates if the SPF record is effective. | ||||||
mech_tagsObject |
Mechanism tags. | ||||||
?allString |
|||||||
spf_recordArray |
The SPF record version, followed by the mechanism that defines the IP addresses allowed to send mail from the domain. | ||||||
totalObject |
|||||||
scoreString |
An assessment of this asset. | ||||||
messageString |
Indicates if the SPF record is effective. | ||||||
mech_tagsObject |
Mechanism tags. | ||||||
spf_recordArray |
The SPF record version, followed by the mechanism that defines the IP addresses allowed to send mail from the domain. | ||||||
gradeString |
This finding’s grade. | ||||||
remediationsArray |
Information about the finding and instructions to remediate it. | ||||||
sample_timestampString [ YYYY-MM-DDTHH:MM:SSZ] |
The date and time when this finding was observed. | ||||||
vulnerabilitiesArray |
Vulnerabilities associated with this finding. | ||||||
rollup_end_dateString [ YYYY-MM-DD] |
The date when this finding was last observed. | ||||||
rollup_start_dateString [ YYYY-MM-DD] |
The date when this finding was first observed. | ||||||
evidence_keyString |
The asset attributed to the finding. | ||||||
first_seenString [ YYYY-MM-DD] |
The date when this observation was first observed. | ||||||
last_seenString [ YYYY-MM-DD] |
The date when this observation was last observed. | ||||||
related_findingsArray |
Details of related findings. | ||||||
risk_categoryString |
The risk category associated with this finding. | ||||||
risk_vectorString |
The slug name of the risk vector. | ||||||
risk_vector_labelString |
The display name of the risk vector. | ||||||
rolledup_observation_idString |
A unique identifier for this observation. | ||||||
severityDecimal |
This finding’s Bitsight severity. | ||||||
severity_categoryString |
This finding’s Bitsight severity. | ||||||
tagsArray |
Infrastructure tags identifying the asset. | ||||||
remediation_historyObject |
The finding’s remediation and refresh history. | ||||||
last_requested_refresh_dateString [ YYYY-MM-DD] |
The date when a finding refresh that included this finding was last requested. | ||||||
last_refresh_status_dateString [ YYYY-MM-DD] |
The date when this finding’s remediation status was last refreshed. | ||||||
last_refresh_status_labelString [ YYYY-MM-DD] |
The current refresh status of this finding. | ||||||
last_refresh_reason_codeString [ YYYY-MM-DD] |
The current remediation status of this finding. | ||||||
asset_overridesArray |
User-assigned asset importance details. | ||||||
assetString |
The domain or IP address. | ||||||
importanceString |
The user-assigned asset importance. | ||||||
override_importanceString |
For internal Bitsight use. | ||||||
durationNull |
For internal Bitsight use. | ||||||
commentsString |
A thread of finding comments. | ||||||
remaining_decayInteger [ Calendar Days] |
The remaining finding lifetime. | ||||||